Back to search
CVE-2020-8599
Published: Mar 18, 2020
Modified: Oct 21, 2025
PUBLISHED
Description
Trend Micro Apex One (2019) and OfficeScan XG server contain a vulnerable EXE file that could allow a remote attacker to write arbitrary data to an arbitrary path on affected installations and bypass ROOT login. Authentication is not required to exploit this vulnerability.
| Vendor | Product | Versions |
|---|---|---|
Trend Micro | Trend Micro OfficeScan, Trend Micro Apex One | affected OfficeScan XG (12.0), Apex One 2019 (14.0) |
References
https://success.trendmicro.com/solution/000245571
x_refsource_MISC
https://success.trendmicro.com/jp/solution/000244253
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now